Monthly Archive: June 2018

A use-after-free vulnerability can occur when the thread for a Web Worker is freed from memory prematurely instead of from memory in the main thread while cancelling fetch operations. This vulnerability affects Firefox <...

A use-after-free vulnerability can occur during WebRTC connections when interacting with the DTMF timers. This results in a potentially exploitable crash. This vulnerability affects Firefox ESR < 52.6 and Firefox < 58. Date published...

Memory safety bugs were reported in Firefox 57. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary...

Memory safety bugs were reported in Firefox 57 and Firefox ESR 52.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be...

md_build_attribute in md4c.c in md4c 0.2.6 allows remote attackers to cause a denial of service (Segmentation fault and application crash) or possibly have unspecified other impact via a crafted file. Date published : 2018-06-11...

Cross-site scripting (XSS) vulnerability in the Canon PrintMe EFI webinterface allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the /wt3/mydocs.php URI. Date published : 2018-06-11 https://www.exploit-db.com/exploits/44882/ https://gist.github.com/huykha/b16109b8e859a992b658dd18b2ee4a7c

portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter. Date published : 2018-06-11 https://github.com/oyeahtime/test/issues/2

An issue was discovered in Free Lossless Image Format (FLIF) 0.3. The TransformPaletteC::process function in transform/palette_C.hpp allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have...

An issue was discovered in Dropbox Lepton 1.2.1. The validateAndCompress function in validation.cc allows remote attackers to cause a denial of service (SIGFPE and application crash) via a malformed file. Date published : 2018-06-11...

md4c 0.2.6 has a NULL pointer dereference in the function md_process_line in md4c.c, related to ctx->current_block. Date published : 2018-06-11 https://github.com/Edward-L/fuzzing-pocs/tree/master/md4c https://github.com/mity/md4c/issues/41

Sonatype Nexus Repository Manager versions 3.x before 3.12.0 has XSS in multiple areas in the Administration UI. Date published : 2018-06-11 https://community.sonatype.com/t/repository-manager-3-12-0-released/31 https://issues.sonatype.org/plugins/servlet/mobile#issue/NEXUS-16870

Grafana before 5.2.0-beta1 has XSS vulnerabilities in dashboard links. Date published : 2018-06-11 https://github.com/grafana/grafana/pull/11813 https://github.com/grafana/grafana/releases/tag/v5.2.0-beta1

A Reflected Cross-Site Scripting web vulnerability has been discovered in the OEcms v3.1 web-application. The vulnerability is located in the mod parameter of info.php. Date published : 2018-06-11 https://www.exploit-db.com/exploits/44895/ https://cxsecurity.com/issue/WLB-2018060092

Cross-site scripting (XSS) vulnerability in news.php in Dimofinf CMS Version 3.0.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter. Date published : 2018-06-11 https://www.exploit-db.com/exploits/44897/ https://cxsecurity.com/issue/WLB-2018060091